API tools faq
paste
Advertisement
aonomike

ptbi-odk-test.globalhealthapp.net

aonomike
Nov 23rd, 2016
154
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 4.54 KB | None | 0 0
raw download clone embed print report
  1. server {
  2.         listen     80;
  3.         server_name    ptbi-odk-test.globalhealthapp.net;
  4.         underscores_in_headers on;
  5.         location / {
  6.                 proxy_pass      http://localhost:8080;
  7.         }
  8. }
  9.  
  10. server {
  11.         listen 443 ssl;
  12.         server_name    ptbi-odk-test.globalhealthapp.net;
  13.  
  14.         root /home/enketo/aggregate/tomcat6/webapps/ODKAggregate;
  15.         client_max_body_size 100M;
  16.  
  17.         underscores_in_headers on;
  18.  
  19.         # Make site accessible from http://localhost/
  20.         server_name localhost;
  21.  
  22.         ssl                  on;
  23.         ssl_certificate      /etc/nginx/ssl/server.crt;
  24.         ssl_certificate_key  /etc/nginx/ssl/server.key;
  25.  
  26.         ssl_session_cache    shared:SSL:20m;
  27.         ssl_session_timeout  10m;
  28.  
  29.         ssl_protocols              TLSv1 TLSv1.1 TLSv1.2;
  30.         #ssl_ciphers                RC4:HIGH:!aNULL:!MD5;
  31.         ssl_ciphers 'ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA';
  32.  
  33.         ssl_prefer_server_ciphers  on;
  34.  
  35.         add_header Strict-Transport-Security "max-age=31536000; includeSubdomains;";
  36.         add_header Access-Control-Allow-Origin "https://ptbi-enketo-test.globalhealthapp.net";
  37.  
  38.         # Proxy pass to servlet container
  39.         location / {
  40.                 proxy_pass                https://localhost:8443;
  41.                 proxy_redirect            off;
  42.                 proxy_set_header          Host               $host;
  43.                 proxy_set_header          X-Real-IP          $remote_addr;
  44.                 proxy_set_header          X-Forwarded-For    $proxy_add_x_forwarded_for;
  45.                 proxy_set_header          X-Forwarded-Proto  https;
  46.                 proxy_set_header          Access-Control-Allow-Origin   "https://ptbi-enketo-test.globalhealthapp.net";
  47.                 proxy_buffer_size         128k;
  48.                 proxy_buffers             8 128k;
  49.                 proxy_busy_buffers_size   256k;
  50.  
  51.  
  52.  
  53.              if ($request_method = 'OPTIONS') {
  54.                 add_header 'Access-Control-Allow-Origin' '*';
  55.                 add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
  56.                 #
  57.                 # Custom headers and headers various browsers *should* be OK with but aren't
  58.                 #
  59.                 add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
  60.                 #
  61.                 # Tell client that this pre-flight info is valid for 20 days
  62.                 #
  63.                 add_header 'Access-Control-Max-Age' 1728000;
  64.                 add_header 'Content-Type' 'text/plain charset=UTF-8';
  65.                 add_header 'Content-Length' 0;
  66.                 return 204;
  67.              }
  68.              if ($request_method = 'POST') {
  69.                 add_header 'Access-Control-Allow-Origin' 'ptbi-enketo-test.globalhealthapp.net';
  70.                 add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
  71.                 add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,OpenRosa-Version';
  72.              }
  73.              if ($request_method = 'GET') {
  74.                 add_header 'Access-Control-Allow-Origin' 'ptbi-enketo-test.globalhealthapp.net';
  75.                 add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
  76.                 add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,OpenRosa-Version';
  77.              }
  78.              if ($request_method = 'HEAD') {
  79.                 add_header 'Access-Control-Allow-Origin' 'ptbi-enketo-test.globalhealthapp.net';
  80.                 add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
  81.                 add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,OpenRosa-Version';
  82.              }
  83.  
  84.         }
  85.  
  86.         location ~ ^/submission {
  87.             add_header 'Access-Control-Allow-Origin' '*';
  88.         }
  89.  
  90. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!